CVE-2012-6082

Name of the Vulnerable Software and Affected Versions MoinMoin versions 1.9.5 through 1.9.5 MoinMoin versions prior to 1.9.6

Description The issue is related to a cross-site scripting (XSS) vulnerability in the rsslink function, located in theme/ init .py. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the page name in an RSS link.

Recommendations For MoinMoin version 1.9.5, update to version 1.9.6 or later. For MoinMoin versions prior to 1.9.6, update to version 1.9.6 or later. As a temporary workaround, consider restricting access to the rsslink function in theme/ init .py to minimize the risk of exploitation.